But here is the dirty little secret of browser security: Even if every Internet browser made today were completely bug-free, it wouldn't stop malicious hackers and malware. Why? Because the vast majority of successful malicious exploits today don't exploit buggy browsers, but rather unwitting end-users. That is, Web-based malware is successful because end-users are intentionally installing it! Most exploit code doesn't search for an unpatched vulnerability, but simply asks the user to install. - Roger Grimes, Infoworld "There is no magic fairy dust protecting Macs" - Dai Zovi, security researcher and co-author of The Mac Hacker's Handbook.
Spyware Sucks is accepting donations, with thanks.
Help us catch the bad guysUse Fiddler to capture evidence of browser hijackings
Get Safe Online will help you protect yourself against internet threats.
The site is sponsored by government and leading businesses working together to provide a free, public service.http://www.getsafeonline.org/
Cite: http://www.theregister.co.uk/2008/03/18/ebay_scripting_malfeasance/
Interesting - this is the first time that I have heard about Shockwave being used to redirect victims to a malicious site.
It's probably an error on the journalist's side and s/he really meant "Flash", just didn't know the difference between the two.
This may be of interest
www.adobe.com/.../flash_player9_security_update.html
I have flash disabled and only allow it when absolutely necessary.
My reason for disabling first was to stop the ads that run over the page, why anyone thinks annoying potential customers in that way is good business sense is beyond me.
After reading your posts here I will make sure I disable it straight away when don't need it.
Just a note for any advertisers who may read this, with a flash ad I cannot see the link address so I won't click on them with .gif images I can see the address so may actually click on them if the ad interests me.